Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
40
Go
2,954
Maven
5,000+
npm
4,606
NuGet
787
pip
4,305
Pub
12
RubyGems
984
Rust
1,121
Swift
49
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10 advisories

Loading
A use of password hash instead of password for authentication vulnerability [CWE-836]... Moderate Unreviewed
CVE-2025-64471 was published Dec 9, 2025
E3 Site Supervisor Control (firmware version < 2.31F01) application services (MGW and RCI) uses... Moderate Unreviewed
CVE-2025-52543 was published Oct 1, 2025
The TeleMessage service through 2025-05-05 relies on the client side (e.g., the TM SGNL app) to... Moderate Unreviewed
CVE-2025-48925 was published May 28, 2025
A Use of Password Hash Instead of Password for Authentication issue was discovered in Dahua DH... High Unreviewed
CVE-2017-7927 was published May 13, 2022
Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's... High Unreviewed
CVE-2021-45036 was published Nov 28, 2022
Digi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to bypass... High Unreviewed
CVE-2023-4299 was published Aug 31, 2023
Use of password hash instead of password for authentication vulnerability in SonicWall GMS and... Critical Unreviewed
CVE-2023-34132 was published Jul 13, 2023
Use of Password Hash Instead of Password for Authentication in SICK FTMg AIR FLOW SENSOR with... Critical Unreviewed
CVE-2023-23450 was published May 15, 2023
CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X... High Unreviewed
CVE-2023-39546 was published Nov 17, 2023
An improper password check exists in the login functionality of WWBN AVideo 11.6 and dev master... High Unreviewed
CVE-2022-32282 was published Aug 23, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database